Уязвимость CVE-2019-3846: Информация

Описание

A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network.

Важность: HIGH (8,8) Вектор: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Исправленные пакеты

Ссылки на рекомендации, решения и инструменты

1. Подверженные конфигурации:

   1. Конфигурация 1

      cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

      Start including

      4.5

      End excliding

      4.9.186

      ---

      cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

      Start including

      4.10

      End excliding

      4.14.134

      ---

      cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

      Start including

      4.15

      End excliding

      4.19.59

      ---

      cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

      Start including

      4.20

      End excliding

      5.1.18

      ---

      cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

      Start including

      3.0

      End excliding

      3.16.70

      ---

      cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*

      Start including

      3.17

      End excliding

      4.4.186

      ---

      Конфигурация 2

      cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*

      ---

      Конфигурация 3

      cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*

      ---

      cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

      ---

      cpe:2.3:o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*

      ---

      cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*

      ---

      Конфигурация 4

      cpe:2.3:o:netapp:a700s_firmware:-:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:h:netapp:a700s:-:*:*:*:*:*:*:*

      ---

      Конфигурация 5

      cpe:2.3:o:netapp:cn1610_firmware:-:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:h:netapp:cn1610:-:*:*:*:*:*:*:*

      ---

      Конфигурация 6

      cpe:2.3:o:netapp:h610s_firmware:-:*:*:*:*:*:*:*

      ---

      Running on/with:

      cpe:2.3:h:netapp:h610s:-:*:*:*:*:*:*:*

      ---

      Конфигурация 7

      cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*

      ---

      cpe:2.3:a:netapp:active_iq_unified_manager_for_vmware_vsphere:*:*:*:*:*:*:*:*

      Start including

      9.5

      ---

      Конфигурация 8

      cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*

      ---

      cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*

      ---

      Конфигурация 9

      cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

      ---

      Конфигурация 10

      cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*

      ---

      cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:*

      ---

      cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*

      ---